|
Unlike most Network Access Control solutions, which start and end with admission checks, Mirage gives you continuous endpoint control the entire time a device is on your network. Our advanced behavioral technology offers superior protection for the network interior against threats, including zero-day attacks, without requiring signatures or updates. This patented technology minimizes risk to the network from infected endpoints, yielding a high level of protection that is transparent to the end user.
Mirage employs a set of behavioral profiles, which monitor endpoints the entire time they are connected to the network for behavior that is indicative of an infection or attack. Because it is continually monitoring network traffic for suspicious activity, Mirage catches threats that propagate from within the network interior, where the majority of threats originate.
Mirage’s behavioral approach to threat protection means that no endpoint agents or signatures are required to catch even new, zero-day threats – those for which a signature or patch is not yet available. Unlike anomaly detection solutions, which require time to learn and baseline your network’s “normal traffic,” the behavioral profiles work immediately to provide instant value with minimal false positives.
The innovative use of “dark IP” address space – the unused IP addresses on a given network segment – illustrates the power of Mirage’s behavioral profiles. There are few legitimate reasons for an endpoint to try to contact multiple dark IPs; this activity typically indicates that the device is attempting to propagate a threat. An endpoint exhibiting this suspicious behavior is immediately quarantined by Mirage to ensure that it cannot infect other devices. Mirage also uses the dark IP space to deceive attackers with device decoys that lock up would-be attackers in lengthy, non-productive dialog.
Next »
Next » |
